Clyde Local Theatre

IIS 6.0 and higher support the following authentication mechanisms:[18]

• Anonymous authentication
• Basic access authentication
• Digest access authentication
• Integrated Windows Authentication
• UNC authentication
• .NET Passport Authentication (Removed in Windows Server 2008 and IIS 7.0)[19]
• Certificate authentication

IIS 7.0 has a modular architecture. Modules, also called extensions, can be added or removed individually so that only modules required for specific functionality have to be installed. IIS 7 includes native modules as part of the full installation. These modules are individual features that the server uses to process requests.[20]

IIS 7.5 includes the following additional or enhanced security features:[21]

• Client certificate mapping
• IP security
• Request filtering
• URL authorization

Authentication changed slightly between IIS 6.0 and IIS 7, most notably in that the anonymous user which was named "IUSR_{machinename}" is a built-in account in Vista and future operating systems and named "IUSR". Notably, in IIS 7, each authentication mechanism is isolated into its own module and can be installed or uninstalled.[19]

IIS 8.0 offers new features targeted at performance and easier administration. The new features are:

• Application Initialization: a feature that allows an administrator to configure certain applications to start automatically with server startup. This reduces the wait time experienced by users who access the site for the first time after a server reboot.[22]
• Splash page during application initialization: the administrator can configure a splash page to be displayed to the site visitor during an application initialization.[22]
• ASP.NET 4.5 support: With IIS 8.0, ASP.NET 4.5 is included by default, and IIS also offers several configuration options for running it side by side with ASP.NET 3.5.[23]
• Centralized SSL certificate support: a feature that makes managing certificates easier by allowing the administrator to store and access the certificates on a file share.[24]
• Multicore scaling on NUMA hardware: IIS 8.0 provides several configuration options that optimize performance on systems that run NUMA, such as running several worker processes under one application pool, using soft or hard affinity and more.[25]
• WebSocket Protocol Support[26]
• Server Name Indication (SNI): SNI is an extension to Transport Layer Security, which allows the binding of multiple websites with different hostnames to one IP address (similar to how Host Headers are used for non-SSL sites).[27]
• Dynamic IP Address Restrictions: a feature that enables an administrator to dynamically block IPs or IP ranges that hit the server with a large number of requests[28]
• CPU Throttling: a set of controls that allow the server administrator to control CPU usage by each application pool in order to optimize performance in a multi-tenant environment[29]

IIS 8.5 has several improvements related to performance in large-scale scenarios, such as those used by commercial hosting providers and Microsoft's own cloud offerings. It also has several added features related to logging and troubleshooting. The new features are:

• Idle worker-Process page-out: a function to suspend idle sites to reduce the memory footprint of idle sites[30]
• Dynamic Site Activation: a feature that registers listening queues only to sites that have received requests[31]
• Enhanced Logging: a feature to allow the collection of Server variables, request headers and response headers in the IIS logs[32]
• ETW logging: an ETW provider which allows collecting real-time logs using various Event-tracing tools[33]
• Automatic Certificate Rebind: a feature that detects when a site certificate has been renewed and automatically rebinds the site to it[34]

Comments

No comments have been found. Be the first to add a comment using the form below.

Add A Comment